[Code of Federal Regulations]

[Title 36, Volume 3]

[Revised as of July 1, 2006]

From the U.S. Government Printing Office via GPO Access

[CITE: 36CFR1234.28]



[Page 917]

 

              TITLE 36--PARKS, FORESTS, AND PUBLIC PROPERTY

 

        CHAPTER XII--NATIONAL ARCHIVES AND RECORDS ADMINISTRATION

 

PART 1234_ELECTRONIC RECORDS MANAGEMENT--Table of Contents

 

Subpart C_Standards for the Creation, Use, Preservation, and Disposition 

                          of Electronic Records

 

Sec.  1234.28  Security of electronic records.



    Agencies shall implement and maintain an effective records security 

program that incorporates the following:

    (a) Ensures that only authorized personnel have access to electronic 

records.

    (b) Provides for backup and recovery of records to protect against 

information loss.

    (c) Ensures that appropriate agency personnel are trained to 

safeguard sensitive or classified electronic records.

    (d) Minimizes the risk of unauthorized alteration or erasure of 

electronic records.

    (e) Ensures that electronic records security is included in computer 

systems security plans prepared pursuant to the Computer Security Act of 

1987 (40 U.S.C. 759 note).



[55 FR 19218, May 8, 1990. Redesignated at 60 FR 44641, Aug. 28, 1995]